ChakraCore, Microsoft Edge Security Vulnerabilities

Microsoft Bing Search Spoofing Vulnerability

...

Win32k Elevation of Privilege Vulnerability

...

Microsoft SharePoint Server Remote Code Execution Vulnerability

...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

Windows Cryptographic Services Information Disclosure Vulnerability

...

Microsoft Brokering File System Elevation of Privilege Vulnerability

...

Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

Windows DWM Core Library Elevation of Privilege Vulnerability

...

May 14, 2024—KB5037768 (OS Builds 19044.4412 and 19045.4412)

May 14, 2024—KB5037768 (OS Builds 19044.4412 and 19045.4412) 03/12/24 IMPORTANT The following editions of Windows 10, version 21H2 will reach end of service on June 11, 2024:- Windows 10 Enterprise and Education- Windows 10 IoT Enterprise- Windows 10 Enterprise multi-sessionAfter that date, these.....

May 14, 2024—KB5037782 (OS Build 20348.2461)

May 14, 2024—KB5037782 (OS Build 20348.2461) For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when...

May 14, 2024—KB5037771 (OS Builds 22621.3593 and 22631.3593)

May 14, 2024—KB5037771 (OS Builds 22621.3593 and 22631.3593) 2/27/24 IMPORTANT: New dates for the end of non-security updates for Windows 11, version 22H2The new end date is June 24, 2025 for Windows 11, version 22H2 Enterprise and Education editions. Home and Pro editions of version 22H2 will...

May 14, 2024—KB5037781 (OS Build 25398.887)

May 14, 2024—KB5037781 (OS Build 25398.887) For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server, version 23H2, see its update history page. Improvements This security update...

Description of the security update for SharePoint Server 2019: May 14, 2024 (KB5002596)

Description of the security update for SharePoint Server 2019: May 14, 2024 (KB5002596) Summary This security update resolves a Microsoft SharePoint Server information disclosure vulnerability and Microsoft SharePoint Server remote code execution vulnerability. To learn more about the...

May 14, 2024—KB5037763 (OS Build 14393.6981)

May 14, 2024—KB5037763 (OS Build 14393.6981) 11/19/20 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 10, version 1607, see its update history page. Highlights This update...

Description of the security update for Excel 2016: May 14, 2024 (KB5002587)

Description of the security update for Excel 2016: May 14, 2024 (KB5002587) Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2024-30042. Note: To apply this...

Windows Remote Access Connection Manager Information Disclosure Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

.NET 7.0 Update - May 14, 2024 (KB5038351)

.NET 7.0 Update - May 14, 2024 (KB5038351) NET 7.0 has been refreshed with the latest update as of May 14, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 7.0 servicing updates are upgrades. The latest servicing update for....

May 14, 2024—KB5037803 (Security-only update)

May 14, 2024—KB5037803 (Security-only update) __ End of support information As of January 10, 2023, Microsoft no longer provides security updates or technical support for Windows 7 Service Pack 1 (SP1). We recommend that you upgrade to a supported version of Windows. For more information, see...

Microsoft Power BI Client JavaScript SDK Information Disclosure Vulnerability

...

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

...

Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

GitHub: CVE-2024-32004 Remote Code Execution while cloning special-crafted local repositories

...

Windows Kernel Elevation of Privilege Vulnerability

...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

Visual Studio Denial of Service Vulnerability

...

Win32k Elevation of Privilege Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

NTFS Elevation of Privilege Vulnerability

...

Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

Microsoft Excel Remote Code Execution Vulnerability

...

May 14, 2024—KB5037778 (Monthly Rollup)

May 14, 2024—KB5037778 (Monthly Rollup) IMPORTANT The installation of this Extended Security Update (ESU) might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012. For a successful installation, please make sure all Subset of endpoints for ESU only...

May 14, 2024—KB5037836 (Security-only update)

May 14, 2024—KB5037836 (Security-only update) __ **End of support information ** Windows Server 2008 SP2 Extended Security Updates (ESU) third and final year ended on January 10, 2023. Additionally, Extended Security Updates on Azure only support ended on January 9, 2024. For more information,...

Windows DWM Core Library Elevation of Privilege Vulnerability

...

Windows DWM Core Library Elevation of Privilege Vulnerability

...

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

Windows Hyper-V Denial of Service Vulnerability

...

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Description of the security update for Office Online Server: May 14, 2024 (KB5002503)

Description of the security update for Office Online Server: May 14, 2024 (KB5002503) Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see the following security advisory:​​​​ Microsoft Excel Remote Code Execution...

Security Update for Microsoft .NET Core (May 2024)

The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the vendor advisory. .NET and Visual Studio Remote Code Execution Vulnerability (CVE-2024-30045) Note that Nessus has not tested for this issue...

Microsoft Windows Search Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows Search.....

KB5037763: Windows 10 Version 1607 / Windows Server 2016 Security Update (May 2024)

The remote Windows host is missing security update 5037763. It is, therefore, affected by multiple vulnerabilities Windows MSHTML Platform Security Feature Bypass Vulnerability (CVE-2024-30040) Windows Common Log File System Driver Elevation of Privilege Vulnerability (CVE-2024-29996, ...